Access Manager

A customer has configured Novell Audit Platform Agent (PA) to Force Caching mode. And along with the Force Caching mode, the “Roll Cache” option is also configured. The PA’s configuration (/etc/logevent.conf) file looks like…

Mahantesh Hongal
Aug 31, 2015
5:19 pm
Reads:
52
Score:
Unrated

Most NAM setups involve a Load Balancer (LB) fronting either the Access Gateway or Identity Server nodes. When these Load Balancers are set up in SNAT / Proxy mode, the IP address of the incoming request will be that or the LB and not the users IP address. Any NAM decisions that perform an action…

By: ncashell
Aug 28, 2015
4:40 pm
Reads:
85
Score:
5

NetIQ technical services gets a lot of requests from customers reporting poor ratings when evaluated by SSLLABs tool. The following document outlines some changes that will hopefully help move you towards an A+ rating. Changes Needed on Access Manager Appliance or Access Gateway Appliance You must have a certificate using SHA 256 to obtain…

By: ncashell
Aug 20, 2015
12:46 pm
Reads:
181
Score:
5

There is a bug in the installation script which can cause some gateways to not install the NetIQ software on the SLES Access Gateway Appliance. After the SLES installation the script calls on: ma-config which is…

EricVeysey
Aug 20, 2015
11:49 am
Reads:
131
Score:
5

Recently there has been a lot of hoopla over security vulnerabilities such as POODLE and logjam and others. To help mitigate and/or resolve some of these issues, more strict implementations of SSL/TLS protocols and various ciphers may have to be used.

By: khurni
Aug 6, 2015
10:29 am
Reads:
249
Score:
5

Redirection, which is required by many applications and services, inherently brings security risks to organizations. For instance, an “un-validated” redirect can allow an unsuspecting user visiting a trusted site to be redirected to a malicious site, therefore exploiting the users’ trust. Using a “whitelist” can help mitigate this vulnerability by…

ggilbe
By: ggilbe
Jul 14, 2015
10:43 am
Reads:
355
Score:
Unrated

The bring-your-own-device (BYOD) trend isn’t just for the enterprise. More and more emergency responders, such as Fire & Rescue NSW and police departments around the world are extending their computer-aided-dispatch (CAD) systems to include mobile devices. CAD allows emergency dispatch personnel to share knowledge of changing events with officers in the field. In the City…

+ read more

David Shephard
Jun 4, 2015
7:55 am
Reads:
1,103
Score:
Unrated

NetIQ Access Manager can support custom Geo location providers to in order to determine the risk score. Risk Based Authentication with NAM 4.1 will consume this custom provider implementation to read geolocation of user from where user is accessing the system.

By: cstumula
May 12, 2015
2:27 pm
Reads:
602
Score:
Unrated

Salesforce allows you to use any third party web application that implements the server side of the OpenID Connect protocol. This allows you to use authentication providers like NetIQ Access Manager.

By: cstumula
May 11, 2015
4:00 pm
Reads:
485
Score:
Unrated

You are writing a mobile or web application to access Amazon Web Services like Cognito Synchronized Storage, S3, Amazon DynoDB etc. Also, you need to handle Identities of your application and store the application state or access services unique per Identity in the Amazon Web Service. In this case, you want to delegate handling of Identities or don’t want to provide custom login code and delegate authentication mechanism to NetIQ Access Manager…

May 7, 2015
10:18 am
Reads:
886
Score:
Unrated